Cloud Security Engineer - Cloudflare WAF Specialist - Hybrid - Perm

Cloud Security Engineer - Cloudflare WAF Specialist

Location: Remote working HOWEVER candidates must already be based in Brussels OR Amsterdam OR Paris OR London (8 days a month on site is mandatory)

Work Type: Permanent

Budget: £90,000 PA (UK)/€90,000 PA (EU)

About the Role

We are seeking a highly skilled and security-focused Cloud Security Engineer with deep expertise in Cloudflare WAF to join a high-performing team responsible for protecting critical web infrastructure.

You will play a central role in securing web applications, automating cloud security configurations, and supporting a DevSecOps culture within an Agile environment.

This is an excellent opportunity for someone passionate about cloud security, WAF technologies, and modern automation practices.

Key Responsibilities

• Lead the implementation, configuration, and management of Cloudflare WAF, including custom rule sets, rate limiting, and DDoS protection.
• Monitor and fine-tune web traffic security policies to safeguard against evolving threats.
• Collaborate with application, infrastructure, and DevOps teams to embed security into pipelines and workflows.
• Work with other WAF platforms (eg, Imperva) across on-prem, SaaS, and cloud environments.
• Write scripts and tools (preferably in Python) to automate security configurations and tasks.
• Apply a deep understanding of network protocols, TLS/mTLS, and authentication mechanisms (eg, OAuth, SAML).
• Support and troubleshoot security issues across Linux-based (RedHat) systems.
• Contribute to a DevSecOps culture, embracing continuous improvement, Agile delivery, and cross-functional collaboration.

Required Skills & Experience

• Minimum 3 years of hands-on experience with Cloudflare WAF - policy management, custom rules, and advanced security configurations
• Strong grasp of the OSI model, especially Layers 3-7
• Excellent knowledge of HTTP, HTTPS, SSL, TLS, mTLS
• Familiarity with authentication protocols such as SAML, OAuth, or similar
• Scripting skills in Python (other programming languages are a plus)
• Solid understanding of PKI and certificate management
• Experience with Linux/Unix systems, ideally RedHat
• Solid networking knowledge (Layer 3 and 4)

Desirable Skills

• Experience with Imperva WAF/WAAP - on-prem, SaaS, or cloud
• Automation and Infrastructure-as-Code experience using Terraform or Ansible
• Familiarity with DevOps, Agile, and Scrum methodologies
• Hands-on experience with reverse proxies such as NGINX or Apache HTTPD
• Security certifications such as CISSP, OSCP, or similar
• Passionate about a specific technical area (cloud, containers, security, etc.)

Soft Skills & Traits

• Collaborative team player with a proactive attitude
• Strong problem-solving and critical thinking capabilities
• Customer-focused, able to understand the broader business context
• Open-minded and eager to learn and evolve
• Able to communicate complex ideas clearly and assess consequences of decisions